| tiêu đề | Selleo Labs Sp. z o.o. Mentingo learn-v2025.08.27 Unrestricted Upload |
|---|
| Mô tả | Vulnerability Type: Stored Cross-Site Scripting (XSS)
Attack Vector: SVG File Upload
Affected Components: User Avatar Upload, Course Image Upload
Required Privileges: Student (lowest privilege level)
The application accepts image/svg+xml file uploads without proper sanitization or content validation. SVG files support embedded JavaScript through event handlers, creating an XSS vector when the SVG is accessed directly via its S3 storage URL.
Attacker uploads malicious SVG containing JavaScript payload as user avatar or course image
Victim inspects page elements and follows the direct S3 presigned URL to view the image
JavaScript payload executes in victim's browser context upon SVG load |
|---|
| Nguồn | ⚠️ https://gist.github.com/KhanMarshaI/ba3e74b331ce4ab602a5a22a59aaf819 |
|---|
| Người dùng | KhanMarshal (UID 89610) |
|---|
| Đệ trình | 01/09/2025 11:47 (cách đây 9 các tháng) |
|---|
| Kiểm duyệt | 19/09/2025 20:16 (18 days later) |
|---|
| Trạng thái | được chấp nhận |
|---|
| Mục VulDB | 325068 [Selleo Mentingo đến 2025.08.27 Profile Picture userAvatar nâng cao đặc quyền] |
|---|
| điểm | 20 |
|---|